CVE-2024-26677

high

Description

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix delayed ACKs to not set the reference serial number Fix the construction of delayed ACKs to not set the reference serial number as they can't be used as an RTT reference.

References

https://git.kernel.org/stable/c/e7870cf13d20f56bfc19f9c3e89707c69cf104ef

https://git.kernel.org/stable/c/63719f490e6a89896e9a463d2b45e8203eab23ae

https://git.kernel.org/stable/c/200cb50b9e154434470c8969d32474d38475acc2

Details

Source: Mitre, NVD

Published: 2024-04-02

Updated: 2024-04-02

Risk Information

CVSS v2

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics